Claim Amendments 

Claim 12 has been amended. Claims 16-19 are canceled. 
Claims 13-15 are unchanged. The following listing of claims 
replaces all previous versions of the claims in the application. 

Listing of Claims 

12. (currently amended) A method for preventing 
intrusions to a computer system, comprising: 

using a network-based appliance to intercept data 

packets; 

deciding whether to forward the intercepted 
packets or whether to route the intercepted packets to a virtual 
proxy; 

performing TCP or UDP processing on the 
intercepted packets before routing them to the virtual proxy; 

using the virtual proxy to analyze the packets 
that have been routed to the virtual proxy to detect intrusions 
using a processing engine having at least one processing 
procedure that detects intrusions ; and 

when the virtual proxy detects an attack or 
violation in the packets, using the virtual proxy to direct a 
transport layer to modify the packets. 



13. (previously presented) The method defined in 
claim 12 wherein using the virtual proxy to direct the transport 
layer to modify the packets further comprises: 

modifying data in the packets at specified 

locations . 

14. (previously presented) The method defined in 
claim 12 further comprising using the virtual proxy to direct 
the transport layer to remove data from the packets when the 
virtual proxy detects an attack or violation. 

15. (previously presented) The method defined in 
claim 12, wherein the virtual proxy directs the transport layer 
to modify the packets using packet stream modification requests, 
the method further comprising sending the packet stream 
modification requests from an active network-based appliance to 
a standby network-based appliance to support fault tolerance. 

16-19. (canceled) 
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